diff options
author | Markus Koschany <apo@debian.org> | 2022-11-23 00:30:31 +0100 |
---|---|---|
committer | Markus Koschany <apo@debian.org> | 2022-11-23 00:30:31 +0100 |
commit | cce5b8db805ffdb3d64fb059333bcdf52d6b2240 (patch) | |
tree | 1327b619479755f3d2d9b811cf5d4584ae8be342 /data | |
parent | c378dccd0716b44ea0994e2bbc0e58616d7ec5d4 (diff) |
Reserve DLA-3203-1 for nginx
Diffstat (limited to 'data')
-rw-r--r-- | data/CVE/list | 1 | ||||
-rw-r--r-- | data/DLA/list | 3 | ||||
-rw-r--r-- | data/dla-needed.txt | 4 |
3 files changed, 3 insertions, 5 deletions
diff --git a/data/CVE/list b/data/CVE/list index 9ea8047738..3f66bbcafa 100644 --- a/data/CVE/list +++ b/data/CVE/list @@ -102703,7 +102703,6 @@ CVE-2021-35475 (SAS Environment Manager 2.5 allows XSS through the Name field wh CVE-2021-3618 (ALPACA is an application layer protocol content confusion attack, expl ...) - nginx 1.20.2-2 (bug #991328) [bullseye] - nginx 1.18.0-6.1+deb11u2 - [buster] - nginx <no-dsa> (Minor issue) [stretch] - nginx <no-dsa> (Minor issue) - vsftpd <unfixed> (bug #991329) [bullseye] - vsftpd <no-dsa> (Minor issue) diff --git a/data/DLA/list b/data/DLA/list index 8d64ef266d..4c0bfca5a8 100644 --- a/data/DLA/list +++ b/data/DLA/list @@ -1,3 +1,6 @@ +[23 Nov 2022] DLA-3203-1 nginx - security update + {CVE-2021-3618 CVE-2022-41741 CVE-2022-41742} + [buster] - nginx 1.14.2-2+deb10u5 [22 Nov 2022] DLA-3202-1 libarchive - security update {CVE-2019-19221 CVE-2021-23177 CVE-2021-31566} [buster] - libarchive 3.3.3-4+deb10u2 diff --git a/data/dla-needed.txt b/data/dla-needed.txt index 2c68f8b87f..9f38cd57c7 100644 --- a/data/dla-needed.txt +++ b/data/dla-needed.txt @@ -170,10 +170,6 @@ netatalk NOTE: 20220816: Programming language: C. NOTE: 20220912: We get errors in the log, not present on bookworm. Needs more investigation. (stefanor) -- -nginx (Markus Koschany) - NOTE: 20221111: Programming language: C. - NOTE: 20221111: Upcoming DSA + follow fixes from bullseye 11.4 (Beuc/front-desk) --- node-cached-path-relative NOTE: 20221111: Programming language: JavaScript. NOTE: 20221111: Follow fixes from bullseye 11.3 (Beuc/front-desk) |